Mercor confirms supply-chain cyberattack tied to LiteLLM compromise

Mercor confirmed on March 31, 2026, that it had been hit A post-mortem published The LiteLLM compromise surfaced roughly a week earlier in March after researchers spotted malicious code in a package. The attack chain started with the compromise of Trivy, an open-source vulnerability scanner, which was then used to insert malicious code into a LiteLLM package. The poisoned package was removed within hours. Mercor is a Y Combinator-backed AI talent marketplace that connects domain experts with labs training frontier models for OpenAI, Anthropic, Meta, and Google. The exfiltrated data includes personally identifiable information for more than 40,000 contractors. An extortion crew identified as TeamPCP appeared to be behind the LiteLLM intrusion, while the Lapsus$ group claimed it had obtained Mercor's data. LiteLLM, maintained